3 matches found
CVE-2017-2792
An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of Antenna House DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to trigger thi...
CVE-2017-2792
AntennaHouse DMC HTMLFilter (used by MarkLogic 8.0-6) contains a heap-based buffer overflow in iBldDirInfo during Compound File Directory Entry parsing. The bug arises while converting Unicode names to SJIS for directory entries; the code increments the Name buffer index (v8) and the loop index (...
AntennaHouse DMC HTMLFilter iBldDirInfo Code Execution Vulnerability(CVE-2017-2792)
Summary An exploitable heap corruption vulnerability exists in the iBldDirInfo functionality of AntennaHouse DMC HTMLFilter used by MarkLogic 8.0-6. A specially crafted xls file can cause a heap corruption resulting in arbitrary code execution. An attacker can provide a malicious xls file to...